Format: 1.8 Date: Mon, 14 Jun 2021 09:18:47 -0400 Source: nettle Binary: libhogweed5 libnettle7 nettle-bin nettle-dev Architecture: riscv64 Version: 3.5.1+really3.5.1-2ubuntu0.2 Distribution: focal Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: libhogweed5 - low level cryptographic library (public-key cryptos) libnettle7 - low level cryptographic library (symmetric and one-way cryptos) nettle-bin - low level cryptographic library (binary tools) nettle-dev - low level cryptographic library (development files) Changes: nettle (3.5.1+really3.5.1-2ubuntu0.2) focal-security; urgency=medium . * SECURITY UPDATE: crash in RSA decryption via manipulated ciphertext - debian/patches/CVE-2021-3580-1.patch: change _rsa_sec_compute_root_tr to take a fixed input size in rsa-decrypt-tr.c, rsa-internal.h, rsa-sec-decrypt.c, rsa-sign-tr.c, testsuite/rsa-encrypt-test.c. - debian/patches/CVE-2021-3580-2.patch: add input check to rsa_decrypt family of functions in rsa-decrypt-tr.c, rsa-decrypt.c, rsa-sec-decrypt.c, rsa.h, testsuite/rsa-encrypt-test.c. - CVE-2021-3580 Checksums-Sha1: 4fb39e563b7a5fbf501bccb704ffd6eccb3c089a 199868 libhogweed5-dbgsym_3.5.1+really3.5.1-2ubuntu0.2_riscv64.ddeb ceedbbfd18f848698f202beefc8da2958bed45a6 131028 libhogweed5_3.5.1+really3.5.1-2ubuntu0.2_riscv64.deb 8aa83a47ec61913ef39a4e464f4c2fed99718249 258356 libnettle7-dbgsym_3.5.1+really3.5.1-2ubuntu0.2_riscv64.ddeb dec74953c3ca9ec8ef4635008a1f7b909c0880ca 145952 libnettle7_3.5.1+really3.5.1-2ubuntu0.2_riscv64.deb 86d89c84504824b05105708924f9736720451a62 170188 nettle-bin-dbgsym_3.5.1+really3.5.1-2ubuntu0.2_riscv64.ddeb df2c65509ff2c907710382d7b325c95fcaabc4d6 23372 nettle-bin_3.5.1+really3.5.1-2ubuntu0.2_riscv64.deb 7433d460e39db7a64395d4000c07006c5aed358b 1138160 nettle-dev_3.5.1+really3.5.1-2ubuntu0.2_riscv64.deb 76c5b0d4ba276899411a06106382904ec4c9940c 7279 nettle_3.5.1+really3.5.1-2ubuntu0.2_riscv64.buildinfo Checksums-Sha256: 403ecb5ef5df5594f2f46b48f5814906daf47c3c383a19a7a7bfb7fedf19266a 199868 libhogweed5-dbgsym_3.5.1+really3.5.1-2ubuntu0.2_riscv64.ddeb 1a145535305d1cbe6a942495b8a50b05341859468ce25a1abc892bff2de0cf58 131028 libhogweed5_3.5.1+really3.5.1-2ubuntu0.2_riscv64.deb fd39bafca251bb1efaed8c257ceb553464e9ceb73d91a259aed9a15e65e7f587 258356 libnettle7-dbgsym_3.5.1+really3.5.1-2ubuntu0.2_riscv64.ddeb 4685f3cbda0ba73693a7d510ca3e68265e4ab3e2beb3dd5e6bf742bb4901a110 145952 libnettle7_3.5.1+really3.5.1-2ubuntu0.2_riscv64.deb 6e99e0d10a55042ec7d6342d7ab7038d617b5afd7b8154e4465aaa14e01bfd61 170188 nettle-bin-dbgsym_3.5.1+really3.5.1-2ubuntu0.2_riscv64.ddeb 03f97de03f004ed9127ebf6f028c650de4a4756d40c370831e406c94237e3c80 23372 nettle-bin_3.5.1+really3.5.1-2ubuntu0.2_riscv64.deb 0ef70872e76a3e80217285c5b58045db343cdb8adfc7e4415136a034e2930f98 1138160 nettle-dev_3.5.1+really3.5.1-2ubuntu0.2_riscv64.deb e287237532a44d183c48ca70e2db997f6f4f10b6790091f4b5b74cd70e78d930 7279 nettle_3.5.1+really3.5.1-2ubuntu0.2_riscv64.buildinfo Files: 62d03d223b2a69815646326ad8431695 199868 debug optional libhogweed5-dbgsym_3.5.1+really3.5.1-2ubuntu0.2_riscv64.ddeb dffe0deec5e4666757a7c850b954e003 131028 libs optional libhogweed5_3.5.1+really3.5.1-2ubuntu0.2_riscv64.deb 9cfcbe8c8723425671a7e04057d7e84c 258356 debug optional libnettle7-dbgsym_3.5.1+really3.5.1-2ubuntu0.2_riscv64.ddeb 1299fd50a016464ad8a445a7a5f35c55 145952 libs optional libnettle7_3.5.1+really3.5.1-2ubuntu0.2_riscv64.deb 7865ec31a0ea9ee4dfb7de6a08ba68b0 170188 debug optional nettle-bin-dbgsym_3.5.1+really3.5.1-2ubuntu0.2_riscv64.ddeb e44a7bdb5b94b5e51c89b2bf28da1588 23372 misc optional nettle-bin_3.5.1+really3.5.1-2ubuntu0.2_riscv64.deb 4fdb32b7e9d09046b2879da64f852e6f 1138160 libdevel optional nettle-dev_3.5.1+really3.5.1-2ubuntu0.2_riscv64.deb fa6bd6d4f34ea8355efd2e8d4e04902e 7279 libs optional nettle_3.5.1+really3.5.1-2ubuntu0.2_riscv64.buildinfo Original-Maintainer: Magnus Holmgren